Alternatives and similar repositories for Hunt

Users that are interested in Hunt are comparing it to the libraries listed below

• skelsec / adiskreader-secretsdump
  Extract registry and NTDS secrets from local or remote disk images
  ☆45Updated 9 months ago
• Leo4j / Invoke-ShareHunter
  Enumerate the Domain for Readable and Writable Shares
  ☆23Updated last month
• nullenc0de / trust-validator
  Validates priv escalation of AD trusts
  ☆48Updated 8 months ago
• whokilleddb / SOAPHound
  SOAPHound is a custom-developed .NET data collector tool which can be used to enumerate Active Directory environments via the Active Dire…
  ☆33Updated last year
• Mr-Un1k0d3r / MsGraphFunzy
  Scripts to interact with Microsoft Graph APIs
  ☆44Updated last year
• OtterHacker / ShareFouine
  ☆52Updated last year
• ToweringDragoon / SACL_Scanner
  SACL Scanner is a tool designed to scan and analyze SACLs.
  ☆48Updated 10 months ago
• heartburn-dev / PKI-Escalate
  Quick and dirty PowerShell script to abuse the overly permissive capabilities of the SYSTEM user in a child domain on the Public Key Serv…
  ☆29Updated 2 years ago
• nyxgeek / autodiscover_enum
  time-based user enum via Basic Auth in Azure against Autodiscover
  ☆33Updated last year
• scottctaylor12 / Red-Lambda
  Leveraging AWS Lambda Function URLs for C2 Redirection
  ☆45Updated 2 years ago
• felmoltor / goLAPS
  Retrieve LAPS passwords from a domain. The tools is inspired in pyLAPS.
  ☆32Updated 9 months ago
• rvrsh3ll / FindIngressEmail
  Find Inbound Email Domains
  ☆35Updated 2 years ago
• nettitude / SharpConflux
  ☆65Updated last year
• xpn / adfstoolkit
  ☆37Updated 11 months ago
• myexploit / living_off_the_land
  ☆44Updated last year
• slygoo / pssrecon
  ☆40Updated last year
• Tamirye / Find-SensitiveAzStorageAccounts
  A PowerShell script designed to detect misconfigured Azure Storage Accounts that could potentially be exploited for privilege escalation …
  ☆12Updated last year
• OOAFA / squeegee
  A collection of tools using OCR to extract potential usernames from RDP screenshots.
  ☆30Updated last year
• synacktiv / AADOutsider-py
  Python3 rewrite of AsOutsider features of AADInternals
  ☆59Updated 5 months ago
• LaresLLC / SuperSharpShares
  SuperSharpShares is a tool designed to automate enumerating domain shares, allowing for quick verification of accessible shares by your a…
  ☆75Updated last year
• HackingLZ / saas_enum
  ☆34Updated 5 months ago
• ImpostorKeanu / eavesarp-ng
  ☆42Updated 6 months ago
• kozmer / rspy
  rust port of pspy with support for process monitoring over dbus
  ☆35Updated 6 months ago
• mlcsec / SigFinder
  Identify binaries with Authenticode digital signatures signed to an internal CA/domain
  ☆40Updated last year
• kapellos / VladimiRED
  ☆19Updated last year
• oldboy21 / SMBAT
  SMB Audit Tool you were looking for
  ☆23Updated 2 years ago
• redskal / SharpAzbelt
  .NET port of Leron Gray's azbelt tool.
  ☆26Updated 2 years ago
• Leo4j / KeyCredentialLink
  Add Shadow Credentials to a target object by editing their msDS-KeyCredentialLink attribute
  ☆25Updated last year
• LuemmelSec / CVE-2023-29357
  ☆53Updated 2 years ago
• MythicAgents / nemesis
  Nemesis agent for Mythic
  ☆28Updated 2 weeks ago